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Or 
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ISS World, South Africa 



Challenge of Terrorism 



• Ottawa Parliament, 
Oct 2014 

• Lindt Cafe, 
Australia, Dec 2014 

• Charlie Hebdo, Jan 
2015 

• Italians arrest 
Vatican plotter, 
April 2015 




Transnational Organized Crime - 
U.S. Senate Report 



Statement for the Record 

Worldwide Threat Assessment 
of the 

US Intelligence Community 
Senate Armed Services Committee 



James R. Clapper 
Director of National Intelligence 
February 26, 2015 

"Savvy, profit-driven criminal networks traffic in 
drugs, persons, wildlife and weapons, corrode 
security and governance, undermine legitimate 
economic activity and the rule of law; cost 
economies important revenues..." 

Worldwide Threat Assessment, Feb. 26, 2015 



Transnational Organized Crime - 
Interpol 




INTERPOL 

Organized criminals, acting globally, are 
"fast exploiting technology and 
leaving governments and their 
police forces behind." 

Interpol, April 2015 



Crime in the Digital Age 



Cyber Crime 



Terrorism 



Cybercri 



$400 Billion world 

Institute/McAfee Study, 2014 



Direct Costs: 

• Theft of Intellectual Prop 

• Financial Assets 

Indirect Costs: 

• Protection 

• Remediation 

• Reputation Damage 



ne Cost 
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$400 Billion world-wi 



Institute/McAfee Study, 2014 




The problem* 

Costs and incidence of attacks 
are high and growing. 



Average cost of cyber 
crime per company: 
95% increase in 4 years 
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2014 



Number of successful attacks 
per year per company: 
1 44% increase in 4 years 
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2014 



Ponemon 



Average time to resolve incidents; 
221 % increase in 4 years 
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2010 2014 



HP Study, 2014 



Crime in the Dig 

Cyber Crime 



r 

Terrorism 



ital Age 



Old Crime, 
New Tools 




Home 



About Tor 



Documentation 



Press 



Blog 



Contact 



Download Volunteer Donate 



Topics discussed on Tor - 2013 study 




Topics as % of 39,000 
unique addresses 
offering Tor content 




Adult 



la 



Silk Road's Ross Ulbricht 




Convicted February, 
Sentenced to Life in 
Prison May 2015 



Dangerous Developments 

♦ Rise of Digital Criminals 

♦Global Reach from the Comfort 
of Home 

♦Complete Anonymity 

♦ Digital anonymous currency 



Evolution of Networks 





GMail 



Qa Outlook 



by Google 



facebook 



twitter* 



A Ik 
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Cloud Adoption 

More and more, data is moving to the cloud. 




Obama and Cameron on 
Encryption 




should not be locked out of Cameron: We should try to avoid 

encrypted smartphones and the safe havens that cou | d 

messaging apps.... Jan 16, otherwise be created for terrorists 



to talk to each other. 



U.S. Federal Bureau of 
Investigation 




The pendulum has "swung too far" against the government. 

FBI Director James Comey, Oct. 16, 2014 



Britain's GCHQ 




The Internet has become "command-and-control networks of 
choice for terrorists and criminals." 

Director Robert Hannigan, Nov. 3, 2014 



French PM Manuel Vails 




"We have to focus on the Internet and social networks, which are 
more than ever used to recruit, organize and disseminate technical 
knowhow to commit terrorist acts.... We must go further." 



PM Manuel Vails, Address to French Parliament, Jan. 13, 2014 



Tim Cook, Apple 




"We shouldn't give in to scare-mongering or to people who 
fundamentally don't understand the details..." 

CEO Tim Cook, Nov. 3, 2014 



Customers "...protected by end-to-end encryption 
across all your devices..." 

Apple Website 



Google 

"We continue our ongoing efforts to encrypt 
all Google products and services." 



Google in The Intercept 



Impact 



How does this change the surveillance 

ecosystem? 

What does it all mean for Law 

Enforcement? 




Seizing 

Not effective anymore: 




Is there a 

How does your 
suspect access th 
information?... 

From the device.. 



way aroun 



Is there a 



You want to be on 
the device and sec 
information when 
your suspect does 

But how can you c 
that? 



around? 




REMOTE CONTROL SYSTEM 

GALILEO 

THE HACKING SUITE FOR GOVERNMENTAL INTERCEPTION 



RCS infrastructure 
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On the device. 




Bypass encryption 
what the suspect sees 
Follow your suspect 
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What will you see? 
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Evidence 



Remote Control System 



G0D 



O Q 

® A Accounting Operations Intelligence Dashboard Alerting System Audit Monitor 



Q All operations ► £fl Swordfish ► 0 Jimmy Page ► Evidence 

$ _ Q & B T 



□i 



Open Petal I Show Summary 



Download Evidence Relevance Add Report Edit Note 



Show ID Fi te r s Presets Reset filters 



Translation 



Acquired 



Received 



Type 



Info 



Nate 



Agent 



2015-05-16 12:57:55 2015-05-18 12:56:5* 



2015-05-18 13:01:44 2015-05-18 13:02:46 



201 5-05-18 1 3:09:45 201 5-05-18 1 3; 1 0:48 



05-28 13:09:52 2015-05-28 13:10:51 



Camera 



2015-05-18 12:57:57 2015-05-18 12:56:55 Add ressbook 



2015-05-18 12:57:57 201 5-05-1 8 1 2: &6 : 55 Add ressbook 



201 5-05-1 8 1 2: 57 : 57 2015-05-18 12:56:55 Add ressbook 



Keylog 



Chat 




H 

Name: pangoeye@rnailcalch.com 

H 

Name: scissor@mailcatch.com 

D 

Name: Jimmy Page 



Content: secret123TP! 



To: a lejandro.reade jimmy, page 
Program: SKYPE 



Info: 



Info: 



I nfo: 



Program: TTueCrypt.exe 

Window: Enter password for C:\Users 

\RCS DemoDesklop\secret_op.lc 

Content: alejandro.reade: Here we 
are! 



Program: Skype J Duration: 00:00:40 
Call From: - j To: alejandro.reade 

El" 



Laptop f 1 ) 



Laptop (1) 



Laptop (1 ) 



Laptop (1 ) 



Laptop (1 ) 



Laptop (1) 



Laptop (1 ) 



£ demo@demo disconnected 



Showing: 49/49 

Thy, May 28 14:18:08 
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Profiling 



4 






Remote Control System 




OJ 1 - 


* 


Accou ntin g Operati oris i ntel ligence 


Dashboard 


Alerting System Audit 


0 

Monitor 




□ 


All operations ► Si daVinci ► * John Doe 











John Doe 



Filter data from: 



to: 




Born: 1 0/1 6/1 962 
Nationality: USA 
Sex: Male 

He i& suspected to be a key figure of the 
terrorist cell. 



Accounts: 



(j johncce69 

^ johndoe@gmaiLcom 

johndoe 
3j Johndoe@hotrnaiLcom 



Most Contacted: 



£ij jack.brown@gmail.com 


34% 


A 


M mary.smith@gmail.com 


21% 




jjj uncle torn 


14% 




C bob75 


12% 








0 Last Positions □ Addresses □ Visited Places 



Map | Satellite | Hybrid | Terrain" 



\ 



B 



POWERED EV 



20 



0 Cammo^ 
Map dala ©201 2 Google. Sanoorn - Torrns of Usc( 



9 650 bryant Street. ■ San Francisco, CA 

jfll 212 12th Street. ■ San Francisco, CA 

ft 340 Harrison Street ■ San Francisco. CA 

9 15 Be mice Street ■ San Francisco. CA 



• policeman :g my server connected 



Thu.Dec20 10:07:48 
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Correlation 



4 








Remote Control System 






* 


Accounting Operations 


Intelligence 


Dashboard 


Alerting System Audit 


0 

Monitor 




□ 


Al ope r at ens ► yg da Vinci 










ii * 



iaight 




Heron 
HeadP 

India Basin 
Shoreline Park 



► c 



Monterey diwu 

^ policeman @ my server connected 



Details 



Target: John Doe 

Address: 64. 25th Street 

Latitude: 37.771006 

Longitude: 12241175 



Filler by dale: 



m 



m 



Thu. Dec 20 10.07:48 
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How can I deploy my agent? 



When the target opens a document 




Exploit Delivery 
Service 

Always up to date 

While the target browses the web 
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Send your target a SMS 



}R Code 



Neb link 
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Inject into downloaded applications 

Inject into Web pages 




Network Injector 
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nvisible to antiviruses. 
Prevent disclosure of your presence 

500+ tests every day. 
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There is much more. 
Come see the live demo! 

Today 15:00-16:00 Session A 

Intruding personal devices with Remote Control 
System: Live Demo of latest attack and data 

gathering techniques 
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Public Opinion 



• Pew Survey: "... 
Struggle over privacy 
and tracking. ..will 
extend through the 
next decade." 

• Post-Snowden: 80% 
say government 
monitoring is a 
concern. 



g government, big worry 



Views of Biggest Threat to U.S. in Future 

In your opinion^ which of the following will be the biggest threat to the country in tlie future -- big 
bushier big iiibor> or big government? 




±96:3 19&9 1973 1977 1981 198:3 1989 1993 1997 2001 200^ 2009 2013 



GALLUP' 



Activists 

• HackingTeam a Target: 

-Citizen Lab 

- Human Rights Watch 
-Privacy International 
-Anonymous 
-Threats 

• States Around the World are Targets: 

- Democracy advocates 
-Human Rights concerns 




Wassenaar Arrangement 



Imposed by E.U. 
Jan. 2015 

Strongest 
regulation on 
exports 

Likely to be 
adopted by the 
U.S.A. this year. 
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The Chilling Effect 



• Increase regulation. ..Restrictions on 
use of technology to fight crime 

• Advance of technology slowed or 
stopped 

• Investigators of crime go blind 

• Safe refuge for criminals online 



What can 

Law Enforcement Do? 



1. Speak out on the need for 
surveillance 

2. Identify for the public the need 

for a balance between privacy 
and security 

3. Publicize successful cases that 
rely on digital surveillance 

4. Pledge to use offensive 
surveillance only as allowed by 
law 

5. Investigate with care 




Offensive Surveillance 



Today's Changing, Challenging and Dangerous 
World and Solutions for Law Enforcement 



Eric Rabe, HackingTeam 
Chief Marketing & 
Communications Officer 



